Maksim Otstavnov discovered that telepathy-gabble incorrectly handled
TLS when connecting to legacy jabber servers. If a remote attacker were
able to perform a machine-in-the-middle attack, this flaw could be exploited to
view sensitive information. (CVE-2013-1431)
It was discovered that telepathy-gabble incorrectly handled certain
messages. A remote attacker could use this flaw to cause applications using
telepathy-gabble to crash, resulting in a denial of service. This issue
only affected Ubuntu 12.04 LTS and Ubuntu 12.10. (CVE-2013-1769)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 13.04 | noarch | telepathy-gabble | <Â 0.16.5-0ubuntu1.1 | UNKNOWN |
Ubuntu | 13.04 | noarch | telepathy-gabble-dbg | <Â 0.16.5-0ubuntu1.1 | UNKNOWN |
Ubuntu | 12.10 | noarch | telepathy-gabble | <Â 0.16.1-2ubuntu0.1 | UNKNOWN |
Ubuntu | 12.10 | noarch | telepathy-gabble-dbg | <Â 0.16.1-2ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | telepathy-gabble | <Â 0.16.0-0ubuntu3.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | telepathy-gabble-dbg | <Â 0.16.0-0ubuntu3.1 | UNKNOWN |